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Abstract. Soft linear logic ([Lafont02]) is a subsystem of linear logic 
characterizing the class PTIME. We introduce soft lambda- calculus as a 
calculus typable in the intuitionistic and afhne variant of this logic. We 
prove that the (untyped) terms of this calculus are reducible in polyno- 
mial time. We then extend the type system of Soft logic with recursive 
types. This allows us to consider non-standard types for representing 
lists. Using these datatypes we examine the concrete expressivity of Soft 
lambda-calculus with the example of the insertion sort algorithm. 

1 Introduction 

With the advent of global computing there are an increasing variety of situations 
where one vifould need to be able to obtain formal bounds on resource usage by 
programs: for instance before running code originating from untrusted source or 
in settings where memory or time is constrained, like in embedded systems or 
synchronous systems. 

Some cornerstones for this goal have been laid by the work on Implicit Com- 
putational Complexity (ICC) as carried out by several authors since the 1990s 
(| Lei94| . |LM93| . |Bel9 2l among others). This field aims at studying languages 
and calculi in which all programs fall into a given complexity class. The most 
studied case has naturally been that of deterministic polynomial time com- 
plexity (PTIME class). We can in particular distinguish two important lines 
of work. The first one deals with primitive recursion and proposes restrictions 
on primitive recursion such that the functions definable are those of PTIME: 
this is the approach of BcUantoni-Cook ( |Bel92| ) and subsequent extensions 
( |HofOO| .fBNSOO ). 

Another line is that of Linear logic (LL)( [nir87| ). By the Curry-Howard 
correspondence proofs in this logic can be seen as programs. Linear logic provides 
a way of controlling duplication of arguments thanks to specific modalities (called 
exponentials). It is possible to consider variants of LL with alternative, stricter 
rules for modalities, for which all proofs-programs can be run in polynomial time. 
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Light linear logic, introduced by Girard ( IGirOSp is one of these systems. It was 
later simplified by Asperti into Light affine logic f |AR02| , |Asp98| ) which allows 
full weakening (that is to say erasing of arguments). However formulas in this 
system are quite complicated as there are two modalities, instead of just one 
in intuitionistic linear logic. More recently Lafont introduced Soft linear logic 
(SLL) (| Laf02 |'). a simpler system which uses the same language of formulas as 
Linear logic and is polytime. It can in fact be seen as a subsystem of linear logic 
or of Bounded linear logic ( |GSS92| '). 

In all these approaches it is shown that the terms of the calculus can be 
evaluated in polynomial time. A completeness result is then proved by simulating 
in the calculus a standard model for PTIME computation such as PTIME Turing 
machines. It follows that all PTIME functions are representable in the calculus, 
which establishes its expressivity. 

However if this completeness argument is convincing for characterization of 
complexity classes of functions, it is rather unsatisfactory when we are inter- 
ested in the use of Implicit Computational Complexity for the study of program 
properties. Indeed it is not so appealing to program in a new language via the 
encoding of Turing machines . . . One would prefer to be able to take advan- 
tage of the features of the language: for the variants of Linear logic for instance 
we have at hand abstract datatypes and structural recursion, higher-order and 
polymorphism. 

Some authors have observed that common algorithms such as insertion sort 
or quicksort are not directly representable in the Bellantoni-Cook approach (see 
for instance |Hof99p . Important contributions to the study of programming as- 
pects of Implicit computational complexity have been done in particular by Jones 
f j.Ion97j ). Hofmann ( j3of99j and Marion ( MarOO,). For instance Hofmann pro- 
posed languages using linear type systems with a specific type for space unit, 
which enabled him to characterize non-size increasing computation with vari- 
ous time complexity bounds. This approach allows to represent several standard 
algorithms. 

Here we are interested in investigating the programming possibilities offered 
by Soft linear logic. In |Laf02| this system is defined with sequent-calculus and 
the results are proved using proof-nets, a graph representation of proofs. In 
order to make the study of programming easier we propose a lambda-calculus 
presentation. We extend for that usual lambda-calculus with new constructs 
corresponding to the exponential rules of SLL. The resulting calculus is called 
Soft lambda-calculus and can be typed in SLL. Actually we choose here the 
affine variant of Soft logic as it is more fiexible and has the same properties. 
Our Soft lambda-calculus is inspired from Terui's Light affine lambda-calculus 
C lTernij l. which is a calculus with a polynomial bound on reduction sequences 
that can be typed in Light affine logic. 

Outline. In section|21we define soft lambda-calculus and its type- assignment 
system. Then in section |31 we prove that the length of any reduction sequence 
of a term is bounded by a polynomial applied to the size of the term. In section 
0]we extend the type system and add recursive typing. Finally in sectional we 



examine datatypes for lists and propose a new datatype with which we program 
the insertion sort. 
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2 Soft lambda-calculus 

The introduction of our calculus will done be in two steps (as in |TerOH ): first 
we will define a grammar of pseudo-terms and then we will distinguish terms 
among pseudo-terms. 

The pseudo-terms are defined by the grammar: 

t,t' -.-.^ x\Xxt\{t t') I \t I let t be !a; in t' 

For a pseudo-term t we consider: 

— its set of free variables FV{t); 

— for a variable x the number of free occurrences no{x, t) of x in t. 
In the pseudo-term letwbe!a;inti, the variable x is bound: 

FV{letuhe\xinti) = FV (u) U FV {ti)\{x} 

If t is of the form letwbexinti we say that t is a let expression. 

If t and Izf respectively denote finite sequences of same length (ti, . . . ,t„) 
and {xi, . . . , Xn), then let t be !lz* int' will be an abbreviation for n consecutive 
let expressions on tiS and XiS: let ti be xi in let t2 be X2 in . . .t' . 

We define the size \t\ of a pseudo-term t by: 

\x\ = l \Xxt\ = \t\ + l 

\{tt')\ = \t\ + \t'\ m^\t\ + i 

|letibe!a;int'| = |i| + + 1 

We will type these pseudo-terms in intuitionistic soft affine logic (IS AL) . The 
formulas are given by the following grammar: 

T ::= a I T ^ T I Va.T | ! T 

We choose the affine variant of Soft linear logic, which means permitting full 
weakening, to allow for more programming facility. This does not change the 
polytime nature of the system, as was already the case for light logic ( |Asp98|Ter01j V 

We give the typing rules in a sequent calculus presentation. It offers the 
advantage of being closer to the logic. It is not so convenient for type-inference, 
but it is not our purpose in this paper. The typing rules are given on Figure ^ 

For (right V) we have the condition: 

(*) a does not appear free in F. 



X : A\- X : A 



(variable) 



r\-t: A A,x : A\- u: B 
r,A\-u[t/x] : B 



(Cut) 



r,x: A\-t: B 




r,x:B\-t:C A\-u:A 



(left arrow) 




r,A,y:A-oBht[{yu)/x]:C 



XI : A, . . . ,x„ : A,r \- t : B 



(mplex) 



xi : Ai, ... ,Xn : An\- t : B 



( prom.) 



y ■.\A,r \- let2/be!a;in/:[a;/a:i, . . . ,x„\ : B 
x:A,r\-t:B 




y\ : \Ai, . . . ,yn : !>ln l~ let if he\~3f int : \B 




Fig. 1. ISAL typing rules 



Observe that the let expression is used to interpret both the multiplexing 
(mplex) and the promotion (prom.) logical rules. We could distinguish two dif- 
ferent kinds of let but we prefer to have a small calculus. 

For instance one can consider for unary integers the usual type of Linear 
logic: 



The integer n is represented by the following pseudo-term of type N, with n 
occurrences of s': 



Among pseudo-terms we define a subclass of terms. These will be defined induc- 
tively together with a notion of temporary variables. The temporary variables of 
a term t, TV{t), will be part of the free variables of t: TV{t) C FV{t). 

Definition 1 The set T of terms is the smallest subset of pseudo-terms such 
that: 



- xgT; then TV{x) = 0; 

- Xx.t G T iff: X i TV{t), teT and no{x, t) < 1; 
then TV (Xx.t) = TV{t)] 

- ih t2) e T iff: tut2& T, TV{ti) n FV{t2) = 0, FV{ti)nTV{t2) = 0; 
then TV{{ti t2)) = TV{ti) U TV{t2); 

- \t€T iff: t e r, TV{t) = and Vx e FV{t),no{x, t) = I; 
then TV{\t) = FV{t); 

- letti be\xint2 €Tiff:ti,t2 € T, TV{ti)nFV{t2) = 0, FV {ti)r\TV {t2) = 0; 
then TV{letti be\x int2) = TV{ti) U (TV {t2)\{x}) . 



Basically the ideas behind the definition of terms arc that: 

— one can abstract only on a variable that is not temporary and which has at 
most one occurrence, 



N = \la.\{a —oa)—oa—oa 



As.Ax.letsbels' 



in(s' [s' {s' ...x)...) 



— one can apply ! to a term which has no temporary variable and whose free 
variables have at most one occurrence; the variables then become temporary; 

— the only way to get rid of a temporary variable is to bind it using a let 
expression. 

It follows from the definition that temporary variables in a term are linear: 

Lemma 1 If t is a term and x S TV{t), then no{x,t) = 1. 

The definition of depth will be useful later when discussing reduction: 

Definition 2 Let t he a term and u he an occurrence of subterm oft. We call 
depth of u in t, d{u, t) the number d of subterms v of t such that u is a subterm 
of V and v is of the form, \v'. 

The depth d{t) of a term t is the maximum of d{u,t) for u subterms oft. 

For instance: for t = \{\f.\x.\e.ifhe\f''m\{f'x) and u = (fx), we have 
d{u,t) = 2. 

We can then observe that: 

Proposition 2 Let t be a term. If x belongs to FV(t) and xq denotes an occur- 
rence of X in t, then d{xo,t) < 1. 

Moreover all occurrences of x in t have the same depth, that we can therefore 
denote by d{x,t), and we have: d{x,t) = 1 iff x £ TV{t). 

In fact we will focus our attention on specific terms: 

Definition 3 A term t is well-formed if we have: 

TV{t) = and Va; G FV{t), no{x,t) = 1. 

Note that to transform an arbitrary term into a well-formed one, one only needs 

to add enough let expressions. 

We have the following properties on terms and substitution: 

Lemma 3 If t is a term and t = Hi, then ti is a well-formed term. 
Lemma 4 If we have: 

— t, u terms, 

- TV{u) = 0, 

- TV{t), 

- FV{u) n TV{t) = 0, 

then: t[u/x] is a term and TV{t[u/x]) = TV{t). 

We can then check the following: 

Proposition 5 If t is a pseudo-term such that in ISAL we have F \- t : A, then 
t is a well-formed term. 



Proof, by induction on the type derivation, using the definition of terms and for 
the case of the (cut) and (leftarrow) rules the lemma 0] 

We will also need in the sequel two variants of lemma 01 

Lemma 6 // we have: 

- t, u terms, 

- xi TV(t), 

- no{x, t) = 1, 

- FV{u)r\TV{t) = 0, 

- TV{u) n Fvlt) =^ 0, 

then: t[u/x] is a term and TV{t[u/x]) = TV{t) UTV{u). 

Note that the main difference with lemma0]is that we have here the assumption 
no{x, t) = 1. 

Lemma 7 // we have: 

- t is a term and u is a well-formed term, 

- FV{t) n FV{u) = 0, 

- x€ TV{t) 

then: t[u/x\ is a term and TV{t[u/x\) = TV{t)\{x} U FV{u). 

We now consider the contextual one-step reduction relation — >^ defined 
on pseudo-terms by the rules of figure [21 The rules (coml) and (com2) are the 
commutation rules. The relation — > is the transitive closure of — . 



{13): {{Xx.t) u) t[u/x] 
(bang) : let !it be !a; in t -^'^ t[u/x] 

(coml): let (let be !y int2) be inta — >^ let be !j/ in (let t2 be !a; ints) 
(com2): (let be !a; in 42)^3 —^^ let ti be !a; in (t2 is) 



Fig. 2. reduction rules 

We have: 

Lemma 8 The reduction is well defined on terms ( the result of a reduction step 
on a term is a term). Furthermore, if t is a well-formed term andt -^^ t' , then 
t' is well-formed. 

Finally we have: 

Proposition 9 (local confluence) The reduction relation on terms is 

locally confluent: if t -^^ t'l andt -^^ t'2 then there exists t' such that t'^ — » t' 
and t'2 — > t' . 



3 Bounds on the reduction 



We want to find a polynomial bound on the length of reduction sequences of 
terms, similar to that holding for SLL proof- nets (Laf02,). For that we must 
define a parameter on terms corresponding to the arity of the multiplexing links 
in SLL proof-nets. 

Definition 4 The rank rank{t) of a term t is defined inductively by: 
rank(x) — 

rank(Xx.t) — rank{t) 

rank{(tit2)) — ma,:>c{rank{ti) , rank(t2)) 

rank{lt) = rank{t) 

ma.x{rank{u),rank{ti)) ifx£TV{ti) 
ma.x{rank{u),rank{ti),no{x,ti)) if x ^ TV{ti) 



rank{letu be \x inti 



The first case in the definition of ranfc(let it be !a; in^i) corresponds to a pro- 
motion, while the second one corresponds to a multiplexing and is the key case 
in this definition. 

To establish the bound we will adapt the argument given by Lafont for proof- 
nets. First we define for a term t and an integer n the weight W{t^ n) by: 

W{x,n) = 1 

W{Xx.t,n) = W{t,n) + 1 

W(!u,n) nW{u,n) + 1 

W{{tit2),n) = W{tun) + W{t2,n) 

W{\etuhe\xinti,n) = W{u,n) + W{ti,n) 

We have the following key lemma: 
Lemma 10 Let t be a term and n ^ rank{t). 

1. if X ^ TV(t) and no{x,t) — k, then: 

W{t[u/x],n) W{t, n) + kW{u, n) 

2. ifxe TV{t) then: 

W{t[u/x\,n) < W{t, n) + nW{u, n) 

We give the proof of this lemma in Appendix IbI 

Proposition 11 Let t be a term and n ^ rankit). If t -^^ t' by a {(3) or 
(bang) reduction rule then W{t',n) < W{t,n). 

Proof. If t t' with (7 = or (bang) then let r denote the redex reduced 
inside t. The form of t is to[r/y] with no{y,to) — 1 and t' = to[r'/y] where 
r — > r . 

The result is obtained by induction on the term for a given n ^ rank(t): 



let us consider the basic case to = y, i.e. t = r using the definitions of terms 
and rank, and lemma [TUl 

for instance for a (bang) reduction rule, 
r = let luhe Ixinri 

r' ~ ri[u/x] 

W{r, n) = W(\et \u be \x in ri , n) = n.W{u, n) + 1 + W{ri,n) 
If a; e TV in) then by lemma[in|W^(r', n) < W{r, n), else x G FV{ri)\TV{ri) 
and 

W{r', n) ^ W{ri,n) + no(x, ri).W{u, n) 
^ W{ri,n) + ranfc(r).VF(u, n) 
^ W{ri,n) + n) 
< W{r, n) 

In the non basic cases, i.e to 7^ J/j we can remark that W{tQ[r/x\,n) is a 
strictly increasing function of W{r, n). For instance: 

if to = {y h) then W{t\n) = Wito[r' /y],n) = W{{r'ti,n) = M^(r',n) + 
W{ti,n) < W(r, n) + W{ti,n) i.e. W{t', n) < W{t, n). 

For the commutation rules we have W{t' , n) — W{t, n). So we need to use a 
measure of the commutations in a reduction sequence to be able to bound the 
global length. We make an adaptation of the weig ht used in |Ter01j . 

Given an integer n and a term t, for each subterm occurrence in t of the form 
ti = letube!xint2, we define the measure of ti in t by: 

m(ti,t) = W{t,n) - W{t2,n) 

and M{t, n) the measure of t by the sum of m(ti, t) for all subterms ti of t which 
are let expressions. 

Proposition 12 Lett he a term andn ^ rank{t). Ift — >^ t' by a commutation 
reduction rule then M{t',n) < M{t,n). 

Given a term t we denote by nlet{t) the number of subterm occurrences of 
let expressions in t. 

Lemma 13 Let t be a term and n ^ 1. We have nlet{t) ^ VF(t, n) — \ . 
Proposition 14 If t is a term and p = d{t), k = W{t, 1), and n ^ 1 then: 

W{t,n) ^ k.nP 

Proof. Let n ^ 1. By induction on the term, using definitions of weight and 
depth: if t =\ti then 

W{t, n) = n.W{ti,n) + 1 VF(ti, + 1 because n > 1 

{W{ti,l) + l).nP 
^ W{t,l).nP 
The other cases are immediate. 



Theorem 15 [Polytime reduction] 

For any integer d there is a polynomial Pd ( with degree linear in d) such that: 
for any term t of depth d, any sequence of reductions of t has length bounded 

byPd{\t\). 

Proof. Let t be a term of depth d and n ^ rankit). We will call round a sequence 
of reductions and proper round a non empty reductions sequence of (/3) and 
(bang) reductions. 

If t t' then there is an integer I such that a can be described by an 
alternate sequence of commutation rules rounds and proper rounds as follows: 

(com) (/3),(!) (com) (/5),(!) (com) 

t — ti ^ t2 ^ ts . . . t2i+l t2i+2 t2i+3 ■ ■ ■ t2l+l ^ t2l+2 — t 

Remark that the alternate sequence starts and finishes with a commutation 
rules round. The sequence a contains I proper rounds. Because each such round 
strictly decreases the weight of t (Propyl and the commutation rules leave the 
weight unchanged we have / W{t, n). Moreover the length of all proper rounds 
in a is bounded by W{t, n). 

On the other hand we have by definition and lemma [T^ 

M{t', n) < nlet{t').W{t', n) < {W{t', n)f - W{t', n) < {W{t, n)f - W{t, n). 

There are at most + commutation rules rounds, so by Prop.lT^the length 
of all such roimds is bounded by (/ + l).{{W{t, n))^ — W{t, n)). Then we have 

\a\ ^{1 + l).{{W{t, n)f ~ W{t, n)) + W{t, n) ^ {W{t, n)f 

Finally this result can be applied to any n ^ rank{t). Consider n = \t\, by 
prop II 41 we obtain that 

\a\ «C {W{t,l)f.{\t\f'^ ^ (ItD^C'^+i) 

where d — d{t). 

Remark 1. If a term t of depth d corresponds to a program and u to an argument 
such that d{u) ^ d{t), then [t u) normalizes in at most Qd{\u\) steps for some 
polynomial Qd'- 

by the previous theorem if [t u) A t' then \a\ ^ + because 
d{{t u)) = d{t) = d. Let Qd{X) be the following polynomial : 

QdiX)^{X + \t\f('i+^l 

Note that theorem El shows that the calculus is strongly polytime in the 
sense of jTerOl) : there exists a polynomial bounding the length of any reduction 
sequence (no matter the reduction strategy). An obvious consequence is then: 

Corollary 16 (Strong normalization) The terms of soft lambda calculus are 
strongly normalizing. 

Corollary 17 (Confluence property) // a term t is such that t ^ u and 
t — > w then there exists a term w such that u —>■ w and v w. 

Proof. By local confluence (Proposition and strong normalization. 



4 Extension of the calculus 



Thanks to full weakening, the connectives (8), &, ©, 3 and the constant 1 are 
definable from {^,V} ( |Asp98| , |Tct02i ): 

3I3.A = Va.(V/3.(^ a) ^ a) 
A®B^ \Ja.{{A B ^a)^a) 

1 = ya.{a —o a) 
A(BB = Va.((^ a) ^ {B ^ a) ^ a) 
AkB ^ 3a.{{a A) ® {a -o B) ® a) 

We use as syntactic sugar the following new constructions on terms: 
ti ®t2, let M be xi® X2 in 

left t, let It be left xin^i 

right t, right yint2; 

We then have the new typing rules of figure |21 



r,xi : Ai,X2 ■■ A-ih t : B 
r,x : Ai ® A2\- let xhexi ® X2 'vcit : B 



(left 



Ti h ti : A-i Ta h t2 : A2 
ri,r2 '^ti®t2: Ai®A2 



(right ®) 



r, xi : h : B r,X2: A2ht2: B 
r,x : Ai ® A2\- let a; be left xiinti right 3:2 in ^2 : -B; 



(left ©) 



rht: B 



r h right t : A ® B 



(right 02 



Fig. 3. Derived rules 

The derived reduction rules for these constructions are: 

let <i ® ^2 be O 2:2 inu —> u[ti/xi,t2/x2] 

let left w be left xiinfi 

right X2vat2 ti[u/xi\ 

let right M be left xiinti 

right X2int2 ^ t2[u/x2] 

def 

We also use as syntactic sugar, for x a variable: let u be a; in i = ((Ax.t) u). 
We now enlarge the language of types with a fix-point construction: 

T ::= a I T ^ T I Va.T | ! T | ^la.T 

We add the corresponding typing rule and denote by ISALF, intuitionistic light 
affine logic with fix-points, the new system: Figure 01 If a pseudo-term is typable 
in ISALF then clearly it is a well-formed term since these new rules do not have 
any computational counterpart. 



the typing rules of ISAL and 

^ ' (left unfold) — — — - (right unfold) 



X : A[fiX.A/X], r\-t: B ' ' T h t : A[nX.A/X] 

x:A\p^X.A/X],r^t:B r h t : A[^.X.A/X] 

x:^X.A,r^t:B ^'^^ ^"^'^^ F^f.^X.A ("g^t fold) 



Fig. 4. ISALF typing rules 



Proposition 18 (Subject reduction) // we have in the system ISALF F h 
t: A andt t' then F \- t' : A. 



Basically this result follows from the fact that as a logical system ISALF admits 
cut-elimination. 

Note that even though we have no restriction on the types on which we take 
fix points, the typed terms are always normalizable and have a polynomial bound 
on the length of their reduction. This follows from the fact that the polynomial 
termination result (Theorem ll5|l already holds for untyped terms. 

In the following we will handle terms typed in ISALF. Rather than giving the 
explicit type derivations in the previous system, which is a bit tedious because 
it is a sequent-calculus style presentation, we will use a Church typing notation. 
The recursive typing rules and second-order rules will be left implicit. From this 
notation it is possible to reconstruct an explicit type derivation if needed. 

Here is an example of typed term (integer 2 in unary representation) 

As'("~""'.Ax".letsbe!s'in(s' (s' x))" : N 

5 Datatypes and list processing 
5.1 Datatypes for lists 

Given a type A, we consider the following types defining lists of elements of A: 

C{A) — \/a.l(A —oa—oa)—oa—oa 
L{A) = nX.{l®{A(g>X)) 



The type C{A) is the adaptation of the usual system F type for lists. It 
supports an iteration scheme, but does not enable to define in soft lambda- 
calculus a cons function with type C{A) A ^ 'C(A). This is analog to the 
fact that N does not allow a successor function with type N ^ N ( Laf02 ). 

The type L{A) on the contrary allows to define the usual elementary functions 
on lists cons, tail, head, but does not support iteration. 



The empty list for type L{A) is given by e = left 1 and the elementary 
functions by: 



cons : L{A) -o L{A) 
cons = AZ^^-^^.Aa-^. right (a I) 
tail : L{A) L{A) 
tail = AZ^(^).let/be left Z'in left I' 
right I' in 

let r be a®/" in/" 

head : L{A) -o A 

head = AZ^^^^.let / be right /' in 

let r bea ig) in a 

Wc would like to somehow bring together the advantages of C{A) and L{A) in 
a single datatype. This is what we will try to do in the next sections. 



5.2 Types with integer 

Our idea is given a datatype A to add to it a type N so as to be able to iterate 
on A. The type N A would be a natural candidate, but it does not allow a 
suitable iteration. We therefore consider the following type: 

N[A] = VQ!.!(a -^a) ^a^{A^a) 

Given n integer and a closed term of type A, we define an element of N[A]: 

n[a] =As'("^"^ Ax". a^(g) lets be !s' in (s' s'... s'x)" : N[A] 

where s' is repeated n times. 

We can give terms allowing to extract from an element n[a] of type N[A] 
either the data a or the integer n. 

extractd : N[A] ^ A 
extractint : N[A] -o AT 

For instance 

extractd = Ap^t^llet {p id"^") hea^ (g) r« ina 

where id is the identity term and (3 = a —o a. 

However it is (apparently) not possible to extract both the data and the 
integer with a term of type N[A] —oN^A. On the contrary from n and a one 
can build n[a] of type N[A]: 

build : N(SA^ N[A] 

build = At. let t be n (g) a in As.Aa;.(n s x) ^ a 

We can turn the construction A''[.] into a functor: we define the action of A''[.] 

on a closed term f : A —o B hy 

N[f] = Ap^I-^l .As'("^") .Xx". let (p s x)^^" be a r in 

(/ a)^ ®r« 



Then N[f] : N[A] N[B], and N[.] is a functor. 
We have the following principles: 



absorb : N[A] <Si B ^ N[A B] 
out : N[A ^B]^{A^ N[B]) 



The term absorb for instance is defined by: 
absorb = Ai^[^]®^.As'("^").Aa;". 



letthep (8> 6in 




5.3 Application to lists 

In the following wc will focus our interest on lists. Wc will use as a shorthand 
notation L'{A) for N[L{A)]. The terms described in the previous section can be 
applied in this particular case. 

In practice here wc will use the type L'{A) with the following meaning: the 
elements n[l] of L'{A) handled are expected to be such that the list / has a length 
inferior or equal to n. We will then be able to do iterations on a list up to the 
length of the list. 

The function erase maps n[l] to n[e] where e is the empty list; it is obtained 
by a small modification on exint: 

erase : L'{A) L'{A) 

erase = Ap^'(^\As'("^"\Aa;".let (p s x) be/^'^^ ine^^^^ O r" 

We have for the type L'{A) an iterator given by: 

Iter : Va.!(a ^ a) ^ a ^ L'{A) {L(A) ® a) 
Iter = AF'(«^«).Ae".A/^'(^).(/ F e) 

If F has type B ^ B, e type B and F has free variables "3? then if / = 
{Iter (let be in \F) e) we have: 



where in the r.h.s. term F is repeated n times. Such an iterator can be in fact 
described more generally for any type N[A] instead of N[L{A)]. 

Using iteration we can for instance build a function which reconstructs an 
element of L'{A); it acts as an identity function on L'{A) but is interesting 
though because in the sequel we will need to consume and restore integers in 
this way: 



ifn[l]) 



I (let iT be !^ in (F . . . (F e) . . .) 



reconstr 



reconstr 



F 



F 



L'(A) ^ L'{A) 

\{a -o a) with FV{F) = 

let s be !s'"^" in ! (Ar" . (s V)" ) 

Xp^'^^\Xs-^"^"\Xx".{Iter F x p) 



Given terms t : A ^ B and u : B ^ C we will denote by i; u : ^ — « C the 
composition of t and u defined as {Xa"^.{u (t a))). 

Finally we have the usual functions on lists with type L'(A), using the ones 
defined before for the type L{A): 

tail' = N[tail] : L'{A) -o L'{A) 

head! ~ N[head]; extractd : L'(A) —o A 

cons' = N[cons];out : A ^ L'{A) 

Note that to preserve the invariant on elements of L'{A) mentioned at the be- 
ginning of the section we will need to apply cons' to elements n[l] such that 
n > TO + 1 where m is the length of I. 



5.4 Example: insertion sort 

We illustrate the use of the type N[L{A)] by giving the example of the insertion 
sort algorithm. Contrarily to the setting of Light afHne logic with system F 
like types, we can here define functions obtained by successive nested structural 
recursions. Insertion sort provides such an example with two recursions. We use 
the presentation of this algorithm described in |JiofOO| . 

The type A represents a totally ordered set (we denote the order by <). Let 
us assume that we have for A a comparison function which returns its inputs: 

A A ^, / \ / ao ai if ao < ai 

comp : A ® A ^ A ® A, with (comp an a^) < 

ya\®ao otherwise 

Insertion in a sorted list. 

Let flo be an arbitrary element of type A. We will do an iteration on type: 
B — L{A) —oA—o L{A) ® a. The iterated function will reconstruct the integer 
used for its iteration. Let us take F : \{B —o B) with FV{F) = {s'("^")}, given 
by: 

F= letsbe!s'"^"in 
let I be 

left li in let ((/) e ao) be (8) r" in \ * case 1 empty 

(cons a e)^('^) (g) (s' r)° 
right ^1 inlet Zi be 5 (8) Z' in \* case 1 non empty 

let [comp a h) be ai ® a2 in 
let {(j) I' 02) hel" (g) r in 

{cons ai I") ® (s' r)" 
Let e : B be the term e = AZ^(^).Aa^.(e^(^' Note that FV{e) = {x"}. 

Then we have: 

s : la -o a, a; : a h {Iter F e) : L' {A) -o L{A) B 



Finally we define: 



insert = Xp^'^^hXa^. As'(°^°).Ax" 

let {Iter F e p)L{A)®B ^iL(A) ^ -^^ 

if I a)^(^)®" 
and get: insert : L'{A) A ^ L'{A). 
Insertion sort. 

Wc define our sorting program by iteration on i? = L{A) (g) L^A). The left- 
hand-side list is the list to process while the right-hand-side one is the resulting 
sorted list. Then F : \{B —o B) is the closed term given by: 
F = \{Xt^ .letthelf'^^^ (E) p^'^^") inletZibe 

left l2in( left I2) ® p \* case li empty 

right I2 in let Z2 be a (g) Z3 in \ * case h non empty 
Z3 '■"^^ (g) {insert p a)^' 
e = /^(^) ® {erase po)^'^^^ : B 
We then have: 

I : L{A),po : L'{A) h {Iter F e) : L'{A) L{A) B 

So we define: 

presort = Xpq '"^KXp^ ^'^\Xp2 

let {exlist pi)hel^^'^^ in 

let {Iter F ep2)hel' ® I" p' in I" 
Using multiplexing we then get: 
sort = Ap'^'(^).letpbe in 
{presort p' p' p')'^'(^) 

So: 

sort : \L'{A) L'{A). 

Remark 2. More generally the construction A''[.] can be applied successively to 
define the following family of types: 

iV(")[A] =A 
jV('+i)[A] = Ar[ArW[A]] 

This allows to type programs obtained by several nested structural recursions. 
For instance insertion sort could be programmed with type N'^'^^ [A\ —o A'''^^^ [A] . 
This will be detailed in a future work. 

5.5 Iteration 

We saw that with the previous iterator Iter one could define from F : B ^ B 
and e : B an / such that: (/ l[n\) I ^ {let^hellt m{F . . . {F e) . . .). 

However the drawback here is that I is not used in e. We can define a new 
iterator which does not have this default, using the technique already illustrated 
by the insertion term. Given a type variable a, we define C = L{A) —o a. 
If gf is a variable of type !(a — o a), we define: 

G' = letffbe!5'in!(A6'^.A/^(^).(5' {b' I))) : \{C ^ C) 



Then: 

It ^ Aa.Ag'("^").AeC.Ap^'(^). 

let {Iter G' p) be ^'^^ ® in 
(/ h) 

It : Va.!(a a) ^ ^ a) ^ L'{A) a 

Then if / = {It (let 1/ be lie' in !i^) A?o-e') we have: 

{fl[n]) ^ let y^be!li^in(i^...(Fe'[///o])...), 

where in the r.h.s. term F is repeated n times. 

In appendix lUl we give an example of use of this new iterator to program a 
map fmiction. 

6 Conclusion and future work 

We studied a variant of lambda-calculus which can be typed in Soft Afhne Logic 
and is intrinsically polynomial. The contribution of the paper is twofold: 

— We showed that the ideas at work in Soft Linear Logic to control duplication 
can be used in a lambda-calculus setting with a concise language. Note that 
the language of our calculus is simpler than those of calculi corresponding to 
ordinary linear logic such as in BBdPH93|, |Abr93j . Even if the underlying 
intuitions come from proof-nets and Lafont's results, we think that this new 
presentation will facilitate further study of Soft logic. 

— We investigated the use of recursive types in conjunction with Soft logic. 
They allowed us to define non-standard types for lists and we illustrated 
the expressivity of Soft lambda-calculus by programming the insertion sort 
algorithm. 

We think Soft lambda-calculus provides a good framework to study the algorith- 
mic possibilities offered by the ideas of Soft logic. One drawback of the examples 
we gave here is that their programming is somehow too low-level. One would like 
to have some generic way of programming functions defined by structural recur- 
sion (with some conditions) that could be compiled into Soft lambda-calculus. 
Current work in this direction is under way with Kazushigc Terui. It would be 
interesting to be able to state sufficient conditions on algorithms, maybe related 
to space usage, for being programmable in Soft lambda-calculus. 
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APPENDIX 



A Some proofs of section [21 
A.l Lemma Bl 

Proof. We proceed by induction on t. 

— The cases where t is a variable or an abstraction are straightforward. 

— l{t= Iti then FV{t) = TV{t), so as x ^ TV{t) then x ^ FV{t). Therefore 
t[u/x] = t and the result follows. 

— li t = let ti be ly in t2 then we have: 
t[u/x = letti[u/x] he\yiiit2[u/x]]. 

As TV{ti) C TV{t) we know that x ^ TV{ti) and ti, u satisfy the hy- 
pothesis of the statement, so by induction hypothesis on ti we have that 
ti[u/x ]is a term and TV{ti[u/x\) = TV{ti). Similarly t2[u/x ]is a term and 
TV{t2[u/x])^TV{t2). 
So we have: 



TV{h[u/x])=TV{h) (1) 

FV{t2[u/x]) C FV{t2) U (2) 

TF(ti) n FV{t2) = (because t is a term) (3) 

TV{ti) c rv^(t) (4) 

TV^(t) n FV{u) ^ (by assumption) (5) 



From (4) and (5) we get: TV {ti)r]FV {u) = 0. From this result and (3), (2) we 
deduce: TV {h)r\FV {t2[u / x]) ^ 0. So, with (1): TV{ti[u/x])C\FV{t2[u/x]) = 
0. 

In the same way one can check that TV {t2[u / x])f\FV [ti [u/x]) = 0. It follows 
that t[u/x\ — \eiti[u/ x\ be !y int2[w/x] is a term and: 

TV{t[ulx]) = TV{h[u/x])UTVit2[u/x])\{y} 
= TV{h)UTV{t2)\{y} 
= TV{lcttihelymt2) 
= TV{t) 

— The case t — {ti 12) is handled in a similar way as the previous one. 
A. 2 Lemma |6l 

Proof. The proof is by induction on t. 

— Again the cases where i is a variable or an abstraction are straightforward. 

— li t = \ti then the hypothesis of the statement cannot be met as we have 
FV{t)\TV{t) = 0. 



— The cases t — let ii be !yini2 or i = (ti are quite similar, so let us just 
handle one of them, for instance this time t = (<i t2). 

As no{x,t) — 1 we have: either no{x,ti) = 1 and no{x,t2) — 0, or the con- 
verse. Let us assume for instance no{x,ti) — 1 and no{x,t2) = 0. Then as 
FV{ti) C FV{t) and TV{ti) C TV{t) we know that h, u satisfy the con- 
ditions. By induction hypothesis on ti we deduce that ti[u/x] is a term and 
TV{ti[u/x]) = TV{ti){JTV{u). Besides, FV{ti[u/x\) = FV{ti)UFV{u). 
So we have TV{t2) n FV{ti[u/x]) = and 
FV{t2)nTV{ti[u/x]) = FVit2) n {TV{ti)UTV{u)) = 0. 
So (ti[M/a;]i2) is a term, and: 

TV{ti [u/x] t2) = TVih) U TF(u) U TV{t2) = rt/(t) U TF(m). 
A. 3 Lemma 13 

Proof. We proceed by induction on t. 

— if i is a variable then TV{t) = 0, which contradicts the assumption that 
x e TV(t). 

— ii t = Xy.ti, then x e TV{ti). By induction hypothesis on ti, ti[u/a;] is a 
term. As y ^ FV{u) and no{y,t) < 1 we have rio(2/, ^[m/x]) < 1, and so 
Xy.ti[u/x] is a term. Moreover: 

TF(A2/.ti[M/a;]) = TV{h[u/x]) = TV{ti)\{x} U FViu) 
= TV{t)\{x}U FV{u) 

-iit = Hi, then TV{ti) = 0. So x ^ rV^(ti) and TV{ti) n i^F(u) = 0, and 
applying lemma^we get: ti[u/x] is a term and TV{ti[u/x]) = 0. 
Moreover FV{ti[u/x]) = FV{ti)U FV{u), and as ti, m are both well-formed 
and FV{u) n FV^(ii) = we get that ti[u/x] is well-formed. It follows that 

is a term, that is to say that t[u/x] is a term, and: 
TV{t[u/x]) = FV{h[u/x]) = FV(ti)\{x} U FV{u) = TV{t)\{x} U 

— if i = {ti t2) then either a; £ TV(ti) and x ^ TV{t2), or x ^ r\/(ti) and 
X e TV{t2). Let us assume for instance x S ry(ti) and x ^ rF(t2)- We 
have FV{ti) n Fy(u) = for i = 1,2. By induction hypothesis on ti we 
have ti[M/x] is a term and TF(^i[m/x]) TV{ti)\{x} U i^F('u). Moreover 
as t2[u/x] = t2, t2[u/x] is also a term. We have: 

FV{ti[u/x]) = i^F(ti)\{x} U so TF(i2) n Ft/(<i[u/x]) = 0, 

TV{ti[u/x]) = rF(ti)\{x} Ui^F(u), so FV{t2)nTViti[u/x]) = 0. 
So (ti[M/x] t2) is & term, that is to say t[u/x] is a term, and 
TV{t[u/x]) = TV{ti[u/x]) U TV{t2) = TV(t)\{x} U FF(u). 

— the case t = letiibe!j/int2 is handled in a similar way. 

B Proof of lemma 1101 



Proof. 1. proof by induction on t considering x G FV{t) or not. 



2. by induction on t we have: 

— if t = Xy.ti then x e TV{ti). By induction hypothesis we have W{t[u/ 
x],n) ^ W{t, n) + nW(u, n). 

- if t = \ti then by definition of terms x G TV{t) = FV{ti), TV{ti) = 
and no{x,t) = 1 = no{x,ti). The result holds. 

- \it= (tita) then either x € TV(ti) and x ^ FV{t2) or .x e TF(t2) and 
X ^ FV{ti). In the first case W{t[u/x],n) = VF(ti[M/x] t2[u/^];") = 
w[ti[u/x],n)+W{t2[u/x],n) < n)+nW(u, n)+W(t2, n) < W(tit2,n)+ 
nW{u,n). The second case is similar. 

— if t = let u be !a; in then because there is the following disjoint union 
TV{t) = TV{u) W iTV{ti) \ {x}), the result holds. 



C Example: map function 

We use the iterator It to define the map function. Let B = L{A) L{C) ^ a. 
We consider variables f'^^'^ and s'"^". 

F = Xt^ .let t be if 1^''^^ O r« in 
let h be 

left l[m{ left /i) ^/a ® («' r) 
right in 

(tai/ 1[) (g) (cons (/' (/lead h) ® {s' r) 

F : B^B 



e : L{A) ^ B 

We then define (j):L'{A)^B by: 

^={It (let /■('^^C') be!/' in 

let be !s' in \F) e^(^)^^) 

Wc can then define a map function, which however reverses the order of the 
elements of the list. To obtain the proper map function we would have to compose 
it with a reverse function. 

map = A/'(^^c').Ap^'(^).As'("^").Aa;". 

let (0^'(^)^^ p) be /i (g) /2 <8> r in 

map : \{A ^ C) ^ L'{A) ^ L'(C) 



